UserDN escape problem and Group membership checking in 3.0.3

Arran Cudbard-Bell a.cudbardb at freeradius.org
Fri Nov 21 21:57:42 CET 2014


> On 21 Nov 2014, at 09:11, Winders, Timothy A <twinders at southplainscollege.edu> wrote:
> 
> On 11/20/14, 5:04 PM, "Arran Cudbard-Bell" <a.cudbardb at freeradius.org>
> wrote:
> 
> 
>>> (27) Group name is "Students Security Group"
>>> (27) User found. Comparison between membership: name (resolved from DN),
>>> check: name
>>> rlm_ldap (ldap): Released connection (7)
>> 
>> Excellent.
>> 
>> I've pushed a fix for the escaping/normalisation issue as well.
>> 
>> If you do a group check for:
>> 
>> cn=group\2c bar,ou=example,ou=org
>> 
>> the code will convert it to
>> 
>> cn=group\, bar, ou=example,ou=org
>> 
>> and likewise if the directory returns:
>> 
>> cn=group\2c bar,ou=example,ou=org
>> 
>> it'll be converted to
>> 
>> cn=group\, bar, ou=example,ou=org
>> 
>> before comparison.
> 
> 
> Most excellent!  Will this be in the 3.0.5 release or part of the 3.0.6
> code?

Everything went into 3.0.5 after careful review of the other modules that
register escape functions :)

-Arran

Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2



More information about the Freeradius-Users mailing list